Debian FTP Daemon Vulnerable to Buffer Overflow (SITE)

To: <debian-user-portuguese@lists.debian.org>
Subject: Debian FTP Daemon Vulnerable to Buffer Overflow (SITE)
From: "cosmo" <cosmo@osite.com.br>
Date: Fri, 25 May 2001 21:41:19 -0300
Message-id: <[🔎] 000601c0e5f4$c65df080$0200a8c0@linux.com.br>
References: <0GDW003IJW91V8@email-3.ig.com.br>

> SecuriTeam web site: http://www.securiteam.com
> 
>   Debian FTP Daemon Vulnerable to Buffer Overflow (SITE)
> ------------------------------------------------------------------------
> 
> SUMMARY
> 
> A security vulnerability in Debian FTP Daemon has been discovered. The 
> vulnerability arises when a buffer of 400 bytes or more is sent to the 
> FTPd daemon in a SITE command.
> 
> DETAILS
> 
> Vulnerable systems:
> Debian 2.2 is 2.2r3 default FTPd daemon Version 6.2/OpenBSD/Linux-0.10
> 
> Example:
> May 18 12:32:46 ts ftpd[677]: ts FTP server (Version 
> 6.2/OpenBSD/Linux-0.10) ready.
> May 18 12:32:47 ts ftpd[677]: command: SITE
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAA
> May 18 12:32:47 ts ftpd[677]: <--- 500
> May 18 12:32:47 ts ftpd[677]: 'SITE
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAA
> ': command not understood.
> May 18 12:32:47 ts ftpd[677]: <--- 221
> May 18 12:32:47 ts ftpd[677]: You could at least say goodbye.
> May 18 12:32:47 ts inetd[139]: ftp/tcp server failing (looping), service 
> terminated
> 
> 
> ADDITIONAL INFORMATION
> 
> The information has been provided by  <mailto:feedback@tamersahin.net> 
> Tamer Sahin.

[ ]'s

***************************  .''`.
* cosmo@hackhour.com.br   * : :'  :
* www.hackhour.com.br     * `. `'`
* Hack Hour Inc.          *   `-
*************************** Debian

Reply to:

Prev by Date: Re: syn flood
Next by Date: Re: syn flood
Previous by thread: Re: proftpd exploit??
Next by thread: SOM
Index(es):
- Date
- Thread